| 1 |
On 2/9/2021 3:20 AM, Michael wrote: |
| 2 |
> |
| 3 |
>> Actually tried that. Got LPD installed, sent a test page. Test page |
| 4 |
>> appeared in the Windows Queue, then disappeared without any |
| 5 |
>> acknowledgement from the printer. |
| 6 |
> This would need some troubleshooting/configuring on the Windows end. It's a |
| 7 |
> long time ago I tried this and don't recall what I had configured to allow |
| 8 |
> clients to print via the Windows PC. It was relatively simple and lightweight |
| 9 |
> though, unlike Samba which I wouldn't bother with just for printing. |
| 10 |
If it was JUST for printing I'd agree. But the whole samba setup is for |
| 11 |
more than that. There's also file sharing (since Windows 10 home doesn't |
| 12 |
support NFS), central authentication, things like that. |
| 13 |
> |
| 14 |
>> I finally got it working in samba mode |
| 15 |
>> so I'm good with that. And that, again, would skip the whole point of |
| 16 |
>> having a central print server. :) |
| 17 |
> Not really. Athena would remain the CUPS server for itself and any Linux or |
| 18 |
> additional OS clients, sending jobs over IPP:// to the Windows print server |
| 19 |
> running on the Windows PC. |
| 20 |
> |
| 21 |
Okay, I could see that one. Although I'm totally lost when it comes to |
| 22 |
IPP. I've looked but apparently my google-fu is still weak because I |
| 23 |
can't find any good documentation on how to setup IPP, how to format the |
| 24 |
URLs, etc.... |
| 25 |
>>> 3. If the current setup is the right thing for you, increase CUPS log |
| 26 |
>>> verbosity and check the logs on Athena to find out what it isn't happy |
| 27 |
>>> with |
| 28 |
>>> when Janus sends a print job to it. First check the CUPS driver and |
| 29 |
>>> printing protocol is the same on Janus as on Athena and the CUPS' config |
| 30 |
>>> on Athena allows inbound connections from your LAN, or your Janus' IP |
| 31 |
>>> address. |
| 32 |
>> I can check on those. Thanks. I do notice one thing strange. Maybe a |
| 33 |
>> cups bug. In the web interface when I created the printer in Athena, I |
| 34 |
>> checked the box to say it was a shared printer. But when I look at the |
| 35 |
>> status it says "not shared". |
| 36 |
> Hmm ... what follows the commented line: |
| 37 |
> |
| 38 |
> # Restrict access to the server... |
| 39 |
> <Location /> |
| 40 |
> Order Deny,Allow |
| 41 |
> ... ? |
| 42 |
> |
| 43 |
> in the '/etc/cups/cupsd.conf' of Athena? |
| 44 |
> |
| 45 |
|
| 46 |
Here's the entire file. Although I fail to see what the allow/deny could |
| 47 |
mean for a printer showing on Athena. It's not that Janus says it's not |
| 48 |
a shared printer. It's ATHENA saying it's not shared, right after I |
| 49 |
checked the box to make it shared. |
| 50 |
|
| 51 |
# Configuration file for the CUPS scheduler. See "man cupsd.conf" for a |
| 52 |
# complete description of this file. |
| 53 |
# |
| 54 |
|
| 55 |
# Log general information in error_log - change "warn" to "debug" |
| 56 |
# for troubleshooting... |
| 57 |
LogLevel debug |
| 58 |
PageLogFormat |
| 59 |
|
| 60 |
# Only listen for connections from the local machine. |
| 61 |
Listen 192.168.10.2:631 |
| 62 |
Listen /run/cups/cups.sock |
| 63 |
|
| 64 |
# Show shared printers on the local network. |
| 65 |
Browsing On |
| 66 |
BrowseLocalProtocols |
| 67 |
|
| 68 |
# Default authentication type, when authentication is required... |
| 69 |
DefaultAuthType Basic |
| 70 |
|
| 71 |
# Web interface setting... |
| 72 |
WebInterface Yes |
| 73 |
|
| 74 |
# Restrict access to the server... |
| 75 |
<Location /> |
| 76 |
Order allow,deny |
| 77 |
allow 192.168.10.0/24 |
| 78 |
</Location> |
| 79 |
|
| 80 |
# Restrict access to the admin pages... |
| 81 |
<Location /admin> |
| 82 |
Order allow,deny |
| 83 |
allow 192.168.10.0/24 |
| 84 |
</Location> |
| 85 |
|
| 86 |
# Restrict access to configuration files... |
| 87 |
<Location /admin/conf> |
| 88 |
AuthType Default |
| 89 |
Require user @SYSTEM |
| 90 |
Order allow,deny |
| 91 |
</Location> |
| 92 |
|
| 93 |
# Restrict access to log files... |
| 94 |
<Location /admin/log> |
| 95 |
AuthType Default |
| 96 |
Require user @SYSTEM |
| 97 |
Order allow,deny |
| 98 |
</Location> |
| 99 |
|
| 100 |
# Set the default printer/job policies... |
| 101 |
<Policy default> |
| 102 |
# Job/subscription privacy... |
| 103 |
JobPrivateAccess default |
| 104 |
JobPrivateValues default |
| 105 |
SubscriptionPrivateAccess default |
| 106 |
SubscriptionPrivateValues default |
| 107 |
|
| 108 |
# Job-related operations must be done by the owner or an administrator... |
| 109 |
<Limit Create-Job Print-Job Print-URI Validate-Job> |
| 110 |
Order deny,allow |
| 111 |
Allow 192.168.10.0/24 |
| 112 |
</Limit> |
| 113 |
|
| 114 |
<Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job |
| 115 |
Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription |
| 116 |
Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job |
| 117 |
Suspend-Current-Job Resume-Job Cancel-My-Jobs Close-Job CUPS-Move-Job |
| 118 |
CUPS-Get-Document> |
| 119 |
Require user @OWNER @SYSTEM |
| 120 |
Order deny,allow |
| 121 |
</Limit> |
| 122 |
|
| 123 |
# All administration operations require an administrator to |
| 124 |
authenticate... |
| 125 |
<Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer |
| 126 |
CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default CUPS-Get-Devices> |
| 127 |
AuthType Default |
| 128 |
Require user @SYSTEM |
| 129 |
Order deny,allow |
| 130 |
</Limit> |
| 131 |
|
| 132 |
# All printer operations require a printer operator to authenticate... |
| 133 |
<Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer |
| 134 |
Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs |
| 135 |
Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer |
| 136 |
Startup-Printer Promote-Job Schedule-Job-After Cancel-Jobs |
| 137 |
CUPS-Accept-Jobs CUPS-Reject-Jobs> |
| 138 |
AuthType Default |
| 139 |
Require user @SYSTEM |
| 140 |
Order deny,allow |
| 141 |
</Limit> |
| 142 |
|
| 143 |
# Only the owner or an administrator can cancel or authenticate a job... |
| 144 |
<Limit Cancel-Job CUPS-Authenticate-Job> |
| 145 |
Require user @OWNER @SYSTEM |
| 146 |
Order deny,allow |
| 147 |
</Limit> |
| 148 |
|
| 149 |
<Limit All> |
| 150 |
Order deny,allow |
| 151 |
</Limit> |
| 152 |
</Policy> |
| 153 |
|
| 154 |
# Set the authenticated printer/job policies... |
| 155 |
<Policy authenticated> |
| 156 |
# Job/subscription privacy... |
| 157 |
JobPrivateAccess default |
| 158 |
JobPrivateValues default |
| 159 |
SubscriptionPrivateAccess default |
| 160 |
SubscriptionPrivateValues default |
| 161 |
|
| 162 |
# Job-related operations must be done by the owner or an administrator... |
| 163 |
<Limit Create-Job Print-Job Print-URI Validate-Job> |
| 164 |
AuthType Default |
| 165 |
Order deny,allow |
| 166 |
</Limit> |
| 167 |
|
| 168 |
<Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job |
| 169 |
Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription |
| 170 |
Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job |
| 171 |
Suspend-Current-Job Resume-Job Cancel-My-Jobs Close-Job CUPS-Move-Job |
| 172 |
CUPS-Get-Document> |
| 173 |
AuthType Default |
| 174 |
Require user @OWNER @SYSTEM |
| 175 |
Order deny,allow |
| 176 |
</Limit> |
| 177 |
|
| 178 |
# All administration operations require an administrator to |
| 179 |
authenticate... |
| 180 |
<Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer |
| 181 |
CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default> |
| 182 |
AuthType Default |
| 183 |
Require user @SYSTEM |
| 184 |
Order deny,allow |
| 185 |
</Limit> |
| 186 |
|
| 187 |
# All printer operations require a printer operator to authenticate... |
| 188 |
<Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer |
| 189 |
Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs |
| 190 |
Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer |
| 191 |
Startup-Printer Promote-Job Schedule-Job-After Cancel-Jobs |
| 192 |
CUPS-Accept-Jobs CUPS-Reject-Jobs> |
| 193 |
AuthType Default |
| 194 |
Require user @SYSTEM |
| 195 |
Order deny,allow |
| 196 |
</Limit> |
| 197 |
|
| 198 |
# Only the owner or an administrator can cancel or authenticate a job... |
| 199 |
<Limit Cancel-Job CUPS-Authenticate-Job> |
| 200 |
AuthType Default |
| 201 |
Require user @OWNER @SYSTEM |
| 202 |
Order deny,allow |
| 203 |
</Limit> |
| 204 |
|
| 205 |
<Limit All> |
| 206 |
Order deny,allow |
| 207 |
</Limit> |
| 208 |
</Policy> |
| 209 |
|
| 210 |
# Set the kerberized printer/job policies... |
| 211 |
<Policy kerberos> |
| 212 |
# Job/subscription privacy... |
| 213 |
JobPrivateAccess default |
| 214 |
JobPrivateValues default |
| 215 |
SubscriptionPrivateAccess default |
| 216 |
SubscriptionPrivateValues default |
| 217 |
|
| 218 |
# Job-related operations must be done by the owner or an administrator... |
| 219 |
<Limit Create-Job Print-Job Print-URI Validate-Job> |
| 220 |
AuthType Negotiate |
| 221 |
Order deny,allow |
| 222 |
</Limit> |
| 223 |
|
| 224 |
<Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job |
| 225 |
Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription |
| 226 |
Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job |
| 227 |
Suspend-Current-Job Resume-Job Cancel-My-Jobs Close-Job CUPS-Move-Job |
| 228 |
CUPS-Get-Document> |
| 229 |
AuthType Negotiate |
| 230 |
Require user @OWNER @SYSTEM |
| 231 |
Order deny,allow |
| 232 |
</Limit> |
| 233 |
|
| 234 |
# All administration operations require an administrator to |
| 235 |
authenticate... |
| 236 |
<Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer |
| 237 |
CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default> |
| 238 |
AuthType Default |
| 239 |
Require user @SYSTEM |
| 240 |
Order deny,allow |
| 241 |
</Limit> |
| 242 |
|
| 243 |
# All printer operations require a printer operator to authenticate... |
| 244 |
<Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer |
| 245 |
Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs |
| 246 |
Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer |
| 247 |
Startup-Printer Promote-Job Schedule-Job-After Cancel-Jobs |
| 248 |
CUPS-Accept-Jobs CUPS-Reject-Jobs> |
| 249 |
AuthType Default |
| 250 |
Require user @SYSTEM |
| 251 |
Order deny,allow |
| 252 |
</Limit> |
| 253 |
|
| 254 |
# Only the owner or an administrator can cancel or authenticate a job... |
| 255 |
<Limit Cancel-Job CUPS-Authenticate-Job> |
| 256 |
AuthType Negotiate |
| 257 |
Require user @OWNER @SYSTEM |
| 258 |
Order deny,allow |
| 259 |
</Limit> |
| 260 |
|
| 261 |
<Limit All> |
| 262 |
Order deny,allow |
| 263 |
</Limit> |
| 264 |
</Policy> |
| 265 |
|
| 266 |
> Similarly, check the "hosts allow" directive in the Samba configuration to |
| 267 |
> include Janus' IP address. |
| 268 |
Again, I think you're misunderstood the problem. Forget Janus for a |
| 269 |
second. Forget Samba for a minute. I create a pinter via the CUPS web |
| 270 |
interface on Athena. When it shows the box to make it shared, I check |
| 271 |
the box. When I finish and the printer status appears, it says "not |
| 272 |
shared". Other machines and other protocols have not even come into play |
| 273 |
yet. |
| 274 |
|
| 275 |
-- |
| 276 |
Dan Egli |
| 277 |
On my test server |
Archives